Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-1108
junkbuster
security
http
remote attack
cve-2005-1108
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.1 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.9%
The ij_untrusted_url function in JunkBuster 2.0.2-r2, with single-threaded mode enabled, allows remote attackers to overwrite the referrer field via a crafted HTTP request.
Affected configurations
Node
junkbusterinternet_junkbusterMatch2.0.2_r2
| CPE | Name | Operator | Version |
|---|---|---|---|
| junkbuster:internet_junkbuster | junkbuster internet junkbuster | eq | 2.0.2_r2 |
Related
nvd
nvd
CVE-2005-1108
2005-05-02 04:00:00
cvelist
cvelist
CVE-2005-1108
2005-04-16 04:00:00
debiancve
debiancve
CVE-2005-1108
2005-05-02 04:00:00
nessus
nessus
GLSA-200504-11 : JunkBuster: Multiple vulnerabilities
2005-04-14 00:00:00
FreeBSD : junkbuster -- heap corruption vulnerability and configuration modification vulnerability (97edf5ab-b319-11d9-837d-000e0c2e438a)
2005-07-13 00:00:00
Debian DSA-713-1 : junkbuster - several vulnerabilities
2005-04-22 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200504-11 (junkbuster)
2008-09-24 00:00:00
FreeBSD Ports: junkbuster
2008-09-04 00:00:00
FreeBSD Ports: junkbuster
2008-09-04 00:00:00
osv
osv
junkbuster - several
2005-04-21 00:00:00
debian
debian
[SECURITY] [DSA 713-1] New junkbuster packages fix several vulnerabilities
2005-04-21 14:35:32
[SECURITY] [DSA 713-1] New junkbuster packages fix several vulnerabilities
2005-04-21 14:35:32
freebsd
freebsd
gentoo
gentoo
JunkBuster: Multiple vulnerabilities
2005-04-13 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
6.1 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
71.9%
Related for CVE-2005-1108